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1 This action is in response to the communication filed on 5/16/2005. 

2 DETAILED ACTION 

3 Claims 1-8, and 10-19 have been examined and claim 9 has been cancelled. 

4 All objections and rejections not set forth below have been withdrawn. 

5 Response to Arguments 

6 Applicant's arguments filed 5/16/2005 have been fully considered but they are not 

7 persuasive. Applicant argues primarily that: 

8 a. The combination of Fielder and Menezes, as relied upon in the office action dated 

9 2/1 1/2005, is not possible because the combination would destroy the principle of operation of 

10 Fielder. 

1 1 Applicant's argument that the combination of Fielder and Menezes would destroy the 

12 principle of operation of Fielder has been considered and is not persuasive. Applicant has 

13 misinterpreted the principle of operation of Fielder to be not sending the update data from one 

14 device to another. However, this is not the case. The principle of operation of Fielder is clearly 

15 expressed in the first five lines of the abstract as being "a bilateral system for authenticating 

1 6 remote transceiving stations through use of station identifiers (Ids), and through use of passwords 

17 which are used only one time, and thereafter exchanging messages through use of an encryption 

18 key which is changed after each system connection." This clearly does not limit the principle of 

19 operation of Fielder to not sending the update data between two devices. Fielder has merely 

20 expressed that it was preferred that the update data was not sent between the two devices. As 

21 such, exchanging the update data does not destroy the principle of operation. More specifically, 

22 it does not stop the system from authenticating remote transceiving stations through use of 



Application/Control Number: 09/921,265 Page 3 

Art Unit: 2131 



1 station identifiers, and through use of one-time passwords. Nor does it prevent the system from 

2 exchanging messages through use of an encryption key which is changed after each system 

3 connection. Instead, the combination merely changes the way the key is updated, which does not 

4 destroy the principle of operation. Furthermore, Menezes has provided clear motivation for 

5 having the server generate this data randomly and exchanging this data between the server and 

6 the client on Page 398 Section (i) Lines 1-2. Specifically, Menezes stated that this provides 

7 uniqueness and timeliness assurances, and precludes certain replay and interleaving attacks. As 

8 such, there is reasonable motivation to go against the preferred embodiment of not sending the 

9 update data. Therefore, the examiner does not find the argument persuasive and has therefore 

10 maintained the rejection presented in view of the combination of Fielder and Menezes. 

1 1 Title 

12 The title of the invention is acceptable. 

1 3 Claim Rejections - 35 USC §102 

14 The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that form the 

15 basis for the rejections under this section made in this Office action: 

16 A person shall be entitled to a patent unless - 

1 7 (e) the invention was described in (1) an application for patent, published under section 

1 8 122(b), by another filed in the United States before the invention by the applicant for patent or 

19 (2) a patent granted on an application for patent by another filed in the United States before the 

20 invention by the applicant for patent, except that an international application filed under the 

2 1 treaty defined in section 351(a) shall have the effects for purposes of this subsection of an 

22 application filed in the United States only if the international application designated the United 

23 States and was published under Article 21(2) of such treaty in the English language. 
24 

25 Claims 1, 5-8, and 16-19 are rejected under 35 U.S.C. 102(e) as being anticipated by 

26 Fielder et al. (US Patent Number 5,995,624) hereinafter referred to as Fielder. 
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1 Regarding claim 1, Fielder disclosed a method for validating a client device (Originating 

2 System) by a server device (Answering System) (See Fielder Abstract), said method comprising 

3 the steps of: generating a shared unpredictable secret (See Fielder Col. 9 Paragraph 1 wherein the 

4 unpredictable secret is the dynamic secret); storing the shared unpredictable secret client device 

5 (See Fielder Col. 9 Lines 10-12) and in the server device (See Fielder Col. 10 Lines Paragraph 

6 6); requiring the client device to prove that it holds a correct secret precondition to the server 

7 device validating the client device (See Fielder Fig. 4b Steps 214-217 and Col. 10 paragraphs 4- 

8 6); and replacing the shared unpredictable secret by a new shared unpredictable secret when the 

9 server device validates the client device (See Fielder Col. 9 Lines 10-12 and Col. 10 paragraph 

10 6). 

1 1 Regarding claim 5, Fielder disclosed that the shared unpredictable secret is generated by 

12 a generator from the group comprising a random number generator and a pseudo-random number 

13 generator (See Fielder Col. 6 Paragraph 9). 

14 Regarding claim 6, Fielder disclosed that the shared unpredictable secret comprises an 

15 unpredictable component and a fixed component (See Fielder Col. 9 Lines 5-10 and Col. 6 

16 Paragraph 9). 

17 Regarding claim 7, Fielder disclosed that a plurality of devices desire to be validated by 

18 the server device; and each client device has a unique unpredictable secret that it shares with the 

19 server device (See Fielder Col. 13 Paragraphs 2-3). 

20 Regarding claim 8, Fielder disclosed that following a validation of the client device, the 

21 server device discards the original shared unpredictable secret and stores within server device a 
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1 new shared unpredictable secret that can be generated by applying update data to the original 

2 shared unpredictable secret (See Fielder Col. 10 Paragraph 6 and Col. 6 paragraph 3). 

3 Regarding claim 16, Fielder disclosed that the client device presents proof data to the server 

4 device, wherein the proof data are derived from a shared unpredictable secret using a proof data 

5 generation algorithm, and the proof data do not divulge the shared unpredictable secret (See 

6 Fielder Col. 8 Lines 15-67); the server device checks the proof data by using a proof data 

7 generation algorithm consistent with the proof data generation algorithm used by the client 

8 device (See Fielder Col. 10 Lines 38-62); and when the server device determines that the proof 

9 data presented by the client device were not generated from the same shared unpredictable secret 

10 that is stored in both the client device and in the server device, the server device does not 

1 1 validate the client device (See Fielder Col. 10 Lines 52-59). 

12 Regarding claim 17, Fielder disclosed that each proof data generation algorithm is a one- 

13 way function (See Fielder Col. 8 Lines 27-32, and Col. 10 Lines 16-27). 

14 Regarding claim 18, Fielder disclosed a system for enabling a server device to validate a client 

15 device, said system comprising: at least one client device (See Fielder Fig. 1 Element 10); a 

16 server device (See Fielder Fig. 1 Element 1 1); a shared unpredictable secret (See Fielder Fig, 2 

17 Element 21); means for storing the shared unpredictable secret the client device (See Fielder Fig. 

18 1 Element 5b); means for storing the shared unpredictable secret the server device (See Fielder 

19 Fig. 1 Element 17b); coupled to client device and to server device, means for determining 

20 whether the client device holds a correct secret (See Fielder Fig. 3b Element 1 18 and Fig. 4b 

21 Element 217); coupled to the determining means, means for allowing the server device to 

22 validate the client device when the client device proves that it holds a correct secret (See Fig. 3b 
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1 Element 121 and Fig. 4b Elements 217-219); and coupled to the client device and to the server 

2 device, means for replacing the original shared unpredictable secret with a new shared 

3 unpredictable secret when server device validates the client device (See Fig. 3b Elements 123- 

4 124 and Fig. 4b Elements 220-221) (Also see Fielder claims 1-19). 

5 Regarding claim 19, Fielder disclosed a computer readable medium containing computer 

6 program instructions for enabling a server device to validate client device (See Fielder Col. 5 

7 Lines 63-65), said computer program instructions causing the execution of the following steps: 

8 generating a shared unpredictable secret; storing the shared unpredictable secret in the client 

9 device and in the server device; requiring the client device to prove that it holds a correct secret 

10 as a precondition to allowing the client device to be validated by the server device; and replacing 

1 1 the shared unpredictable secret by a new shared unpredictable secret when the client device is 

12 validated by the server device (See the rejection of claim 1 above). 

1 3 Claim Rejections - 35 USC §103 

14 The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 

15 obviousness rejections set forth in this Office action: 

16 A patent may not be obtained though the invention is not identically disclosed or 

1 7 described as set forth in section 102 of this title, if the differences between the subject matter 

1 8 sought to be patented and the prior art are such that the subject matter as a whole would have 

1 9 been obvious at the time the invention was made to a person having ordinary skill in the art to 

20 which said subject matter pertains. Patentability shall not be negatived by the manner in which 

2 1 the invention was made. 
22 

23 Claims 1, 5-8, 1 1-12, and 14-19 are rejected under 35 U.S.C. 103(a) as being 

24 unpatentable over Fielder as applied to claim 1 above, and further in view of Menezes 

25 (Handbook of Applied Cryptography). 
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1 Regarding claim 1, Fielder disclosed a method for validating a client device (Originating 

2 System) by a server device (Answering System) (See Fielder Abstract), said method comprising 

3 the steps of: generating a shared unpredictable secret (See Fielder Col. 9 Paragraph 1 wherein the 

4 unpredictable secret is the dynamic secret); storing the shared unpredictable secret client device 

5 (See Fielder Col. 9 Lines 10-12) and in the server device (See Fielder Col. 10 Lines Paragraph 

6 6); requiring the client device to prove that it holds a correct secret precondition to the server 

7 device validating the client device (See Fielder Fig. 4b Steps 214-217 and Col. 10 paragraphs 4- 

8 6); and replacing the shared unpredictable secret by a new shared unpredictable secret when the 

9 server device validates the client device (See Fielder Col. 9 Lines 10-12 and Col. 10 paragraph 

10 6), and the originating system applying a random change value to the dynamic secret in order to 

1 1 update the secret (See Fielder Col. 9 Paragraph 1), but failed to disclose the change value being 

12 received from the answering system. 

13 Menezes teaches a method for in which a verifier provides a challenge value to a 

14 claimant, and the claimant applies the challenge to a known secret in which the time required to 

15 respond to the challenge is monitored (See Menezes Pages 397-399 Especially Page 398 Section 

16 (i) Random Numbers). 

1 7 It would have been obvious to the ordinary person skilled in the art at the time of 

18 invention to employ the teachings of Menezes in the authentication system of Fielder by having 

1 9 the answering system create the random change value and provide it to the originating system. 

20 This would have been obvious because the ordinary person skilled in the art would have been 

2 1 motivated to protect against replay attacks, ensure timeliness of the reply, and therefore ensure 
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1 that the originator was in fact the holder of the dynamic secret, and further to lessen the 

2 computation required of the originator, and token within. 

3 Regarding claim 18, the combination of Fielder and Menezes disclosed a system for 

4 enabling a server device to validate a client device, said system comprising: at least one client 

5 device (See Fielder Fig. 1 Element 10); a server device (See Fielder Fig. 1 Element 1 1); a shared 

6 unpredictable secret (See Fielder Fig. 2 Element 21); means for storing the shared unpredictable 

7 secret the client device (See Fielder Fig. 1 Element 5b); means for storing the shared 

8 unpredictable secret the server device (See Fielder Fig, 1 Element 17b); coupled to client device 

9 and to server device, means for determining whether the client device holds a correct secret (See 

10 Fielder Fig. 3b Element 118 and Fig. 4b Element 217); coupled to the determining means, means 

1 1 for allowing the server device to validate the client device when the client device proves that it 

12 holds a correct secret (See Fig. 3b Element 121 and Fig. 4b Elements 217-219); and coupled to 

13 the client device and to the server device, means for replacing the original shared unpredictable 

14 secret with a new shared unpredictable secret when server device validates the client device (See 

15 Fig. 3b Elements 123-124 and Fig. 4b Elements 220-221) (Also see Fielder claims 1-19), said 

16 means for replacing further comprising means for the server device to send update data to the 

17 client device; means for the client device to apply the update data to the shared unpredictable 

18 secret to generate a new secret; and means for the client device to replace the shared 

19 unpredictable secret with the new secret (See the rejection of claim 1 above). 

20 Regarding claim 19, the combination of Fielder and Menezes disclosed a computer 

21 readable medium containing computer program instructions for enabling a server device to 

22 validate client device (See Fielder Col. 5 Lines 63-65), said computer program instructions 
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1 causing the execution of the following steps: generating a shared unpredictable secret; storing the 

2 shared unpredictable secret in the client device and in the server device; requiring the client 

3 device to prove that it holds a correct secret as a precondition to allowing the client device to be 

4 validated by the server device; and replacing the shared unpredictable secret by a new shared 

5 unpredictable secret when the client device is validated by the server device, wherein the server 

6 device sends update data to the client device; the client device applies the update data to the 

7 shared unpredictable secret to generate a new secret; and the client device replaces the shared 

8 unpredictable secret with the new secret (See the rejection of claim 1 above). 

9 Regarding claim 5, the combination of Fielder and Menezes disclosed that the shared 

10 unpredictable secret is generated by a generator from a group comprising a random number 

1 1 generator and a pseudo-random number generator (See Fielder Col 6 Paragraph 9). 

12 Regarding claim 6, the combination of Fielder and Menezes disclosed that the shared 

13 unpredictable secret comprises an unpredictable component and a fixed component (See Fielder 

14 Col. 9 Lines 5-10 and Col. 6 Paragraph 9). 

15 Regarding claim 7, the combination of Fielder and Menezes disclosed that a plurality of 

16 devices desire to be validated by the server device; and each client device has a unique 

17 unpredictable secret that it shares with the server device (See Fielder Col. 13 Paragraphs 2-3). 

18 Regarding claim 8, the combination of Fielder and Menezes disclosed that following a 

19 validation of the client device, the server device discards the shared unpredictable secret and 

20 stores within server device the new shared unpredictable secret that can be generated by applying 

21 the update data to the shared unpredictable secret (See Fielder Col. 10 Paragraph 6 and Col. 6 

22 paragraph 3). 
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1 Regarding claim 1 1, the combination of Fielder and Menezes disclosed sending 

2 acknowledgement data to the answering system to confirm that the originating system had 

3 replaced the shared secret with the new secret (See Fielder Col. 8 Paragraphs 3-5). 

4 Regarding claim 12, the combination of Fielder and Menezes disclosed the answering 

5 system receiving the acknowledgement, validating the originating system, replacing the dynamic 

6 secret with the new dynamic secret (See Fielder Col. 10 paragraph 5-6). 

7 Regarding claims 14 and 15, the combination of Fielder and Menezes disclosed sending 

8 proof data as acknowledgement data (See Fielder Col. 8 Paragraphs 3-4 wherein the dynamic 

9 data was the new dynamic data from the previous session). 

10 s Regarding claim 16, the combination of Fielder and Menezes disclosed that the client 

1 1 device presents proof data to the server device, wherein the proof data are derived from the 

12 shared unpredictable secret using a proof data generation algorithm, and the proof data do not 

13 divulge the shared unpredictable secret (See Fielder Col. 8 Lines 15-67); the server device 

14 checks the proof data by using a proof data generation algorithm consistent with the proof data 

15 generation algorithm used by the client device (See Fielder Col. 10 Lines 38-62); and when the 

16 server device determines that the proof data presented by the client device were not generated 

17 from the shared unpredictable secret that is stored in both the client device and in the server 

18 device, the server device does not validate the client device (See Fielder Col. 10 Lines 52-59). 

19 Regarding claim 17, the combination of Fielder and Menezes disclosed that each proof 

20 data generation algorithm is a one-way function (See Fielder Col. 8 Lines 27-32, and Col. 10 

21 Lines 16-27). 
22 
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1 

2 

3 Claims 2-4 are rejected under 35 U.S.C. 103(a) as being unpatentable over Fielder as 

4 applied to claim 1 above, and further in view of Yatsukawa (US Patent Number 6,148,404). 

5 Regarding claim 2, the combination of Fielder and Menezes disclosed both the 

6 originating computer and the answering computer as containing the original dynamic secret (See 

7 Fielder Col. 3 Paragraph 3), but failed to disclose how they both obtained the secret. 

8 Yatsukawa teaches that in a one-time password system, a registration operation should be 

9 performed in order to determine the initial secret (See Yatsukawa Col. 15 Line 65 - Col. 16 Line 

10 12). 

1 1 It would have been obvious to the ordinary person skilled in the art at the time of 

12 invention to employ the teachings of Yatsukawa in the one-time password system of Fielder and 

13 Menezes by having a registration step in which an initial secret was agreed upon and set in the 

14 originating and answering systems. This would have been obvious because the ordinary person 

1 5 skilled in the art would have bee motivated to provide a means for both the systems to contain 

16 identical secrets, as required by Fielder for the one-time password system to work properly, 

17 Regarding claim 3, the combination of Fielder and Menezes and Yatsukawa disclosed 

1 8 that a token can be activated by checking an activation code in order to use the system (See 

19 Fielder Col. 13 Paragraph 2), and also checking a user id and email address and other such 

20 information (See Yatsukawa Col. 16 Paragraph 2). 

21 Regarding claim 4, the combination of Fielder and Menezes and Yatsukawa disclosed 

22 that the token must be purchased (See Fielder Col. 12 Lines 64-67). 
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1 Claims 10, and 13 are rejected under 35 U.S.C. 103(a) as being unpatentable over the 

2 combination of Fielder and Menezes as applied to claim 1 above, and further in view of Lamport, 

3 Leslie (Password Authentication with Insecure Communication). 

4 Fielder and Menezes disclosed the change value being random and applying the change 

5 value to the dynamic secret to create a new dynamic secret (See Fielder Col. 6 Paragraph 9), and 

6 providing proof data that the originating system held the correct dynamic secret (See Fielder Col. 

7 8 Paragraph 5), however, failed to disclose that the applying was a one-way function, and also 

8 failed to disclose that proof of any future dynamic password would suffice. 

9 Lamport teaches a method for applying updates to a secret and verifying knowledge of 

10 the secret in which the update applied is a one-way function, and in which knowledge of any 

1 1 future proof, can be used to grant authentication (See Lamport Section II). 

12 It would have been obvious to the ordinary person skilled in the art at the time of 

13 invention to employ the teachings of Lamport in the authentication system of Fielder and 

14 Menezes by using a one-way function to update the dynamic secret and further by allowing 

1 5 knowledge of any future password to grant authentication. This would have been obvious 

16 because the ordinary person skilled in the art would have been motivated to allow a simple 

1 7 means for re-synchronizing the dynamic secrets held in the originating device and the answering 

1 8 device while protecting against replay attacks. 
19 

20 Conclusion 

21 Claims 1-8, and 10-19 have been rejected and claim 9 has been cancelled. 
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1 THIS ACTION IS MADE FINAL. Applicant is reminded of the extension of time 

2 policy as set forth in 37 CFR 1.136(a). 

3 A shortened statutory period for reply to this final action is set to expire THREE 

4 MONTHS from the mailing date of this action. In the event a first reply is filed within TWO 

5 MONTHS of the mailing date of this final action and the advisory action is not mailed until after 

6 the end of the THREE-MONTH shortened statutory period, then the shortened statutory period 

7 will expire on the date the advisory action is mailed, and any extension fee pursuant to 37 

8 CFR 1. 136(a) will be calculated from the mailing date of the advisory action. In no event, 

9 however, will the statutory period for reply expire later than SIX MONTHS from the mailing 

10 date of this final action. 

1 1 Any inquiry concerning this communication or earlier communications from the 

12 examiner should be directed to Matthew T. Henning whose telephone number is (571) 272-3790. 

13 The examiner can normally be reached on M-F 8-4. 

14 If attempts to reach the examiner by telephone are unsuccessful, the examiner's 

15 supervisor, Ayaz Sheikh can be reached on (571) 272-3795. The fax phone number for the 

16 organization where this application or proceeding is assigned is 571-273-8300. 
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Information regarding the status of an application may be obtained from the Patent 



2 Application Information Retrieval (PAIR) system. Status information for published applications 

3 may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 

4 applications is available through Private PAIR only. For more information about the PAIR 

5 system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 

6 system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). 
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